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xaBaspsTexcmsTcan system and method 



This invention relates to the field of identity authentication and 
security. In particular, the invention . relates to identification of 
individuals for controlling access to resources. 

security is an~expan<ilng' field in which requirements for authentication of 
the identity of individuals is becoming increasingly important in many 
different situations. Identity authentication encompasses many different 
levels from sliaple ticket requirements for access to a charged entry 
environment to security requirements for access to restricted confidential 

areas . 

Access to many different resources" is required to be . controlled. The 
resources may" take many different forms including, but not restricted to 
the following. Physical resources such as locations (e.g. hotel rooms 
secure areas, etc.), physical objects (e.g. safes, computers, etc.), and 
data resources (e.g. secure web sites, financial data, etc.). 

Existing security arrangements include physical objects such as keys 
Smartcards, etc. which can be passed between single individuals. Physical 
objects have the disadvantage that they can be mislaid or stolen. Secure 
physical mechanisms such as keys and locks (particularly using Smartcards) 
have a high cost of installation and upkeep. 

There are also security arrangements in which a pass-code is memorised and 
used by an individual. Again, it is possible to pass this form of securxty 
means between individuals and, furtjxermore, it can be passed to more than 
one individual at a time. Pass-codes can be inadvertently disclosed to an 
untrustworthy party. Also, if specific credentials such as pass-codes 
remain fixed for long periods of ti^e, there is an increasing rxsk of 
exposure - 

Another from of security for individuals is referred to as biometrics, 
wliich is the biological identification of a person which includes the 
characteristics of structure or action. For example, iris or reto-nal 
'•pitUrriV, hand geometry, fingerprints, voice responses to challenges, the 
dynamics of hand-written signatuires, etc. are all forms of biometrics. 
Biometrics is a strong form of identity authentication of an individual; ■ 
however, many forms have a high failure rate. Also, biometrxc 
identifications llave the disadvantage that they are impossible to withdraw. 
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The aim of the present invention is to provide an improved identification 
system. The proposed system uses simple ergonomics and is easy to use. 
There is also a potential for mass standards to be applied using the 
proposed system. 

The present invention provides an identification system in which the 
identifying means changes over time at any required interval making the 
system hard to predict and strengthening the system against impostors, 

' The proposed identification system may provide moveable credentials that 
enable the physical proximity of an individual to a physical location to 
result in security actions. 

According to a first aspect of the present invention there is provided an 
identificatibn system for controlling access to a resource, the system 
including: one or more objects each hosting an electronic tag; a reading 
means; and a data system; the electronic tag having stored identification 
data readable by the reading means for processing by the data system, and 
the identification system having registration means for registering a set 
of identification data for one or more electronic tags, wherein a user is 
permitted access to the resource when the user has in his possession at 
least one of the objects hosting an electronic tag with registered 
identification data. 

The resource may be one of the group of a place, an object, data, 
information, payment means, or authority to act. 

Preferably, the electronic tags are radio frequency identification tags. 

In one embodiment, the user may be permitted access to the resource when 
all the electronic tags in the registered set are present. In an 
alternative embodiment, the user may be permitted access to the resource 
when a sub-set of the electronic tags in the registered set are present. 

A reading means may be provided at a point of access to the resource and 
the reading means may automatically identify the tag identification data 
and seek authorisation from the data system". 

The registration means may include authentication means for authentication 
of the user. The authentication means may use public key infrastructure. 
For example, by a user signing the registered set with a private key and 
providing a public key to a party seeking authentication. 



GB92003p018GBl ^ 

The step .of registering" a set of identification data n^y include providing 
a referLce to the set. Th. reference is the tag identification . data of 
one of the registered set of identification data selected according to 
predefined selection criteria. The predefined selection criteria may 
include the type of object in which the tag is hdsted and a count of the 
sorted identification data- 



The 



The registered set of identification data may have a reference, 
reference may be the tag identification data of one of the registered set 
Tf den^ificltion data selected according to predefined selection cr.ter.a . 
The predefined selection criteria may include the type of object xn whxch 
the tag is hosted and a count of the sorted identification data. 

The registration means may generate a record. of the set of registered ^ 
identification data, the record including a reference to the user and one 
or more attributes of the user. The user may be identified by reading the 
identification data of the tags in his possession and referring to the 
record in the data system. 



The data system is 



preferably accessible via a network. 



There may be provided an interface for the registration means for 
confirming the registered set of identification data -^-^^^^-^^^^^ 
.eans may have a default for accepting or rejecting xdentxx.catxon da.a 
tags hosted in predefined types of objects. 

Preferably, the objects are objects habitually carried on a person 
including clothing, personal effects, and consumables. 

The registered set may have an expiry time or may be superseded when 
another set is registered. 

According to a second aspect of the present invention -there is P-^^^^^ 
:::::rfi!ation method comprising. , registering a -set ---"^^ ^^/^ 

for one or more electronic tags, each tag being hosted xn an object, 
carrying one or- more of the objects; scanning a user to read the 
iLLfication data of the electronic tags hosted in the -^ects -.ng 
carried by the user; comparing the scanned identif icatxon. da.a w.th the 
registered identification data; and permitting access by the user to a 
^l if the .can..d identification data is a sub-set of the registered 
identification data. 
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The resource may be one of the group of a place, an object/ data, 
information, payment means, or authority to act. 

Preferably, the electronic tags are radio frequency identification tags. 

In one embodiment, the user is permitted access to the resource when all 
the electronic tags in the registered set are present. In an alternative 
embodiment, the user may be permitted access to the resource when any 
sub-set of the electronic tags in the registered set are present. 

The step of registering may include authentication of a user. The 
authentication may use public key inf rastructtire . 

The registration may generate a record of the set of registered 
identification data including a reference to the user, and one or more 
attributes of the user. The user may be identified by scanning the 
identification data of the tags in his possession and referring to the 
record. 

The registered set of identification data is preferably accessible via a 
network . 

The step of registering may include the user confirming the registered set 
of identification data. In addition, the step of registering may include 
defaulting to accept or reject identification data of tags hosted in 
predefined types of objects. 

The objects are preferably objects habitually carried on a person including 
clothing, personal effects, and consumables. 

The step of registering may be repeated at time intervals. 

According to a third aspect of the present invention there is provided an 
identification system for controlling access to a resource, the system . 
including: an object hosting an electronic tag; a reading means; and a data 
system; the electronic tag having stored identification data readable by 
the' reading means for processing by the data system, and wherein a user is 
permitted access to the resource when the user has in his possession the 
object hosting the electronic tag- 

According to a fourth aspect of the present invention there is provided an 
identification service comprising: registering a set of identification data 
(212, 312) for one or more electronic tags (102, 204, 306), each tag being 
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hosted in » object (100, 202, 310), . user (200, 300). crryln, one^or »or. 
Objects 100, 202, 310), season, a user ,200. 300, to read the 
! ^ - \,o„ data (lOO of the electronic tagi (102, 204. 306) hosted in 
r^j" aor:o2 310) b,i„, cam.d b, tbe user .200, 300 , , cc^parin, 
Z IZr^ identification data (104) with the registered identlf xcatron 

312), and perndttlng access b. the user ,200, 300, to a resource 
if the scanned Identification data is a sub-set of the registered 
"identification data {212, 312). 

^o^.r..s of the present Invention will now be • described, J^y o^ 
e„les only, with reference to the accoH^anying drawings xn whxch. 

Figures lA and IB are block diagrams of a tag systen. used in an 
identification systeza in accordance with the present invention; 

Figure 2 is a schematic diagram of an identification system in 
accordance with a first embodiment of the present- invention; and 

Figure 3 is a schematic diagram of an identification system in 
accordance with a second embodiment of the present invention. 

^ identification system is provided in which ob3ects are tagged with 
electronic tags. One or more tags can be -^^d -t° ^^^f -/t, , 

the ti^ of manufacture and may remain in the object untxl the ob^ 
at the txme of man deactivate the tag berore 

destroyed. It may also be poss ^ tag iay be added to an 

the object hosting -it is destroyed. SanLLlarly a tag y 
object at any time during the lifetime of the object. 

Kadio fre^ency identification (HFX.) -^-^^^^^^^^^^ri:^^^^^ 

t::!:: rtreTeis!^::^^^^^^^^^^ — r 

and a data enviro^ent. ^ 
to read them are available is a number of forms. Any suxt 
used for the purposes of the present invention. 

Further information and detail of different forms of KFXD systems can be 
found in the following references: ^ttp: //www.idtechex. com; . 
http://tagsys.net; and http://rftagsltd.com. 

100 has a tag 102 embedded in it. The tag 
Referring to Figure lA, an item 100 has a tag attached to 

4- i«! eecurelv but Tanobtrusively attacnea 
102 is embedded in a way that xt is securely i^^m 
the item 100. The form of attachment will depend on the 
tne i-cem transponder including a microchip 

The tag 102 is in the form of a transpon" 



100. 
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with a memory capacity for holding data 104.. The form of the transponder 
may vary according to the system being used. For example, transponders may 
differ in size, memory capacity, physical construction and distance over 
which they can be operated. As an example only, a transponder may have a 
memory capacity of 64 bits and a range of read in the order of 1 to 2 
meters . 

A transponder may be a passive type which is energised by an external 
source provided by the reader 106. Alternatively, a transponder may be an 
active type with built-in energy means, for example, a battery. 

A reader 106 is provided in any location in which tags 102 will be read to 
obtain the data 104 held in the tags 102-. The reader includes a reading 
means 110 which scans and reads the data 104 held in the .microbhlp of the 
tags 102. The reader 106 has ten5>orary storage means 112 for storing the 
read data 104 and transmitting means 114 for transmitting the read data 104 
to a data processing system 108. 

The data processing system 108 has a receiving means 116 for receiving the . 
read data 104 from the transmitting means 114 of the reader 106. The data 
processing system 108 also has data processing means 118 and a database 120 
for storing the data 104 obtained from the tags 102. The data processing 
system 108 can be provided in the form of a computer with network 
communication in which access is available to the information held in the 
database via the network. For example, the network may be the Internet 
allowing public access to a public part of the database via a web site. 

Figure IB shows the communication of the data processing system 108 with a 
network environment 130. The network environment 130 includes a public web 
site 132 of the data processing system 108 which can be accessed by users 
of the identification system. The public wfeb site 132 can include 
published identification data 104 as described further below. The network 
environment 130 can also connect, for exai.«,le, a credit card company's 
system 134 and a merchant's system 136. 

The identification system operates by an individual carrying on his person 
one or more objects hosting one or more tags. As an example, the items can 
be everyday items such as articles of clothing, personal effects such as 
watches, mobile phones, keys, etc. which can all host. tags. In this-way, 
instead of the data held within the tag being used to identify the object 
the tag is embedded in, the data is used to identify the individual 
carrying the object and to authorise the individual to access a resource. 
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A user may be any entity such as an individual, a. group of individuals, a 
company etc.. A user is registered at a point in ti^e with a set of tags. 
Registration is carried out by scanning the tags to obtain the. 
identification data for each of the tags. The identification data for each 
of the tags in the set is stored with a reference for the user. 

Referring to Figure 2, a user 200 has a plurality of tags 204_embedded in 
dif ferent items 202. At' registration, a record 206 is generated which 
....,Hns a reference 208, optional attributes relating to the user 200, and 
the"Zdentification data 212 for each of the tags 204 to be associated wit., 
the user 200. 

The reference 208 for .the user 200 may be the name of the user or, 
depending on the level of security required, any reference to the user. Ir 
the system is used for security, for e^smpl^ to control access to 
confidential resources, the system may authenticate a user by additional 
authentication means. Personal details can be recorded as attributes 210 
in the record 206. The attributes 210 can include biometric information of^ 
the user 200. 

The system can require that the user 200 be in possession of the total set 
of registered tags for access to a resource to be permitted. 
Alternatively, a sub-set of the registered set of tags can be sufficient 
for access to be permitted. The sub-set could be any permutation of the 
total set or a minimum number of tags may be required. 

The user 200 can use a sub-set of the set of recorded tags 204 for a 
specific security requirement. The sub-set used can change over time and 
can be random or chosen by the user 200. A user 200 can create short or 
long term credentials from hours to days by effectively being scanned for 
tags present and using a sub-set of the tags as a signature. 

The change in the sub-set of tags being carried by a user could change at 
intervals. This chum of tag sub-sets makes the identification system hard 
to predict and prevents tags being covertly acquired by another party. 
Also, as the tags are embedded in objects that may be worn or carrxed by 
the user, the unauthorised acquisition of tags by a third party is made 
very difficult. As the tags are low cost items, they may be embedded-xn a 
wide range of items which enables the chum of sub-sets and makes the 
prediction of the sub-set at a particular tijae impossible. 

A checksum mechanism can be provided for combining the identification data 
of. the tags to reduce the tracing of specific identifications. 
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The registration of the set of tags may be for a group of individuals each 
of whom is authorised to the same level for access to conmon resources. 
Each individual will possess a sub-set of the registered tags and a 
selection of any individual's sub-set will allow access to the common 



resource, ^ w« 

in one embodiment of the system, the reference 208 in the record 206 can be 
automatically generated from the tag identification data 212. Once the 
taaa 204 have been scanned at registration, one of the tags 204 ^« ^ ^ ^ 
automatically selected by the system to be the reference. This cou.. 
done by the system ordering the identification data 212 by the content xn 
numerical order and selecting a predetermined number tag, for example the 
fifth tag in the ordered list. This tag then becomes the reference tag. 

The tag identification data can indicate a type of object 202 in which the 
tag 204 is hosted. This means that the reference tag could be chosen from 
only the tags 204 hosted in particular types of object. The type of object 
could be designated by value, age, product type, etc. This avoids a tag 
being selected as the reference tag when it is housed in a consumable , ■ 
object which may have been discarded by the user. 

A user 200 does not then need to provide the reference himself to the 
record. A scanning of the user 200 will locate the tags 204 in hxs 
possession. The data processing system will order the tag identxf xcat.ons 
212 and select the predetermined tag of a group of tags nosred xn 
particular types of objects. The data processing system can then search 
through the records 206 of users using the selected tag Identifxcatxon as 
the reference to locate the correct record 206 for the user 200. 

At the time of registration of tag identifications, an interface may be 
provided for enabling the scanned information obtained by a reader to be 
reviewed, altered and confirmed by the user. When a user is scanned he may 
have tags in his possession which he will not keep with him during the 
entire time period of the registration. Tags may be included xn low cost 
items such as drink cans which will only be in the user's possessxon 
■ten^oraxlly. Tag identifications for such items will need to be deleted 
from the registered set. Default mechanisms can be provided xn the 
interface for accepting or rejecting tag identifications for predefxned 
types of objects. 

At a point of registration, the user can sign or authenticate the set using 
some additional authentication mechanism such as a user id/password, 
private key, or trusted set of tags. 
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t., identification da« providing .n ,dditic„.i of security to th. 



system- 



A UB„ 300 has . private >»y 302 of .n ..,™.etri= P"""'^'*^" 
The p»KLi= .=ey- 304 correspondi-ng to th. private 302 is provided by the 

300 or pvl.ll.hed by a third party to a party operating In the 

» . . — . Th- public key 304 may be certified by 

identification system, as los"-"-—- P 

an official trusted authority to form a certificate. 

Public key cryptography uses an asymmetric algorithm in which th. 

ZZ^Tl anrdeLyptlon keys are different and for which it 

to ccapute one key knowing only the other. Osers receive or, with 

citable hardware or softw.r., can generate for themselves, a P»» «' ^'^ 

: that is. two large nu^ers. Xhe user keeps one of , "'^^ J^^^^^^ f ^ 

nev«= discloses it. Th. other key can be s.f.ly mad, public, Just Ilka 

phone number or similar personal data. Because of the nature 

Algorithm and th. -ay the keys are generated, information "«VP-d ^th 

th! private k.y can only b. decrypted with the public key and vice versa. 



Th. user 300 can encrypt a massage with hi, private key 302. J^' '"^'^ 
^ovlde confidentiality, because anyon. who knows the public key 304 can 
ILrypt it. But the fact that they «u. decrypt it mean, th. message must 
Ta™ frc the user - who alone has the private key 302. .hi, provides 
integrity and authentication and can also be used a. a basis for 
non-rapudlatlon - the digital equivalent of a signature. 

The user 300 has a .et of tags 306 which are hosted by a variety of objects 
310 m the user's possession. At a registration point in '"^ 
300 regller. his !d»tlty with the set of tags 306. This can be done by 
Z IZ TZ 306 being scanned by a reader as shown In figures IK and IB in 
all the tags ju a ..4. ,i, of the tags 306 to be electronically 

order for the identification ^ _ ^ ^„,i.«.a at 

recorded in a database. Some of the scannea T:ag 
registration, if required. 

^ digital certificate 308 is then created including the na.e 314 of the 
user 300 with the user's private key 302. 

Th. digital certificate 306 is th«. ^^t^-^J-^J^J^- Zs^Z be 
available for access by «.other system. The digital c«ctiflca 
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accessed via a computer network such as the Internet by a party wishing to 
authenticate a user 300. The party is provided with the public key 304 of 
the user in order to enable the party to be sure that the digital 
certificate 308 is that of the user 300. 

The information in the digital certificate 308 is in plaintext and 
available to be read by all parties to find put the tag identification data 
312. AS a further level of security, if required, the information in the 
digital certificate 308, or any part of it, can be encrypted so that only 
specific users can access the information. 

For example, the data in the certificate 308 can be encrypted with thfe 
user's private key 302 and the data will only be available to parities who 
have the public key 304 of the user 300. The number of people who have 
access to the public key 304 can be controlled by the user 300 or by the 
operator of the identification system. This prdvides an added level of 
security to both the user 300 and the party obtaining authentication of the 
user 300. 

The identification system may be used to eiable, for example, authorisation 
of payment by a user using the tag identification as authentication. 

A credit card company may operate a database of identification data 
relating to account holders. Each account holder is registered with the 
credit card coit5.any by recording a set of tag identifications for an 
account. The registration procedure will require authentication by means 
of a mechanism such as public key infrastructure, a pass-code, or other 
means . 

The credit card company will hold a certificate containing the tag 
identification data, account details and credit limit for the account 
holder. The registration is done to the credit card company source only 
and so is private. The registered data can change regularly, for example 
daily, by sending the updated tag identification data to the credit card 
company every morning. This increases the security of the system and means 
that the registered set of tags are hosted in items in the possession of 
the user that day. 

An account holder wishing to make a payment is scanned for a sub-set of the 
registered tags and authorisation for payment is sought by the trader from 
the credit card company. The credit card company will identify the account 
from the sub-set of tags and will know from the certificate how much the 
account holder is authorised to spend. If within the credit limit, payment 
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is authorised. This process can be carried out automatically in a data 
environment with a tag reader provided at a place of trade. 

The record of registered tags can have an expiry time or can be valid xintil 
superseded by the subsequent registration of a new or amended, set of tag 
identifications. In the case of a payment mechanism^ the expiry time 
should .be short to increase the security. 
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Exazaple 1 

A user wishes to buy a ticket to a concert. The user has beeix registered 
with a total set of tags including a tag in his niobile phone. The user 
wishes to use his mobile phone as the ticket. 

The user contacts the ticket office and buys the ticket. He gives his 
public registration referende to the ticket office- The ticket office 
accesses via the Internet the registration of the user from the reference. 
The registration provides the user's tag identification details. 

The ticket office then enters the tag identification for the mobile phone 
in its database and the mobile phone will act as the ticket. 

The user arrives at the concert with his mobile phone. He is scanned as he 
enters the concert. The scan identifies the tag of the mobile phone as 
being a ticket on the ticket office database and allows the user automatic 
entry into the concert. 

AS an alternative, the user may inform the ticket office directly of the 
tag identification he wishes to use as the ticket. This could be achieved 
by the user's mobile phone being scanned by the ticket office at the tame 
of purchase, if the purchase was being made in person. 

Iri this way the tag in an object is used as a ticket as a record showing 
the holder is entitled to certain rights. 



ExaioDle 2 

Access to a computer by a user can be cont^-olled using a sub-set of tags. 
The computer has a reader for obtaining tag identification data. The user 
registers his total set of tags with the coit«>uter. 

computer rests in a secure mode, for e^le, with a locked screen. ' 
..... the user is in a predefined vicinity of the computer the co«^,uter will 
identify the tags in the possession of the user. If the tags form a 
sub-set of the total set of tags registered for that user, the con5>uter 
will allow access to the user and will de-activate the secure mode. 

Similarly, when the user walks away from the computer, the reader in the 
computer will not be able to sense the tags and will again enter the secure 
mode. 



The 

When 
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The co^^uter can be prograiomed to respond to other changes xn the 
envirolent in the predefined vicinity of the co^uter. ^ -^--^^^ ^ 
so=.eone approaches the computer without- security clearance, the scre_n wx.l 



screen save. 



, 4- ^ ^^r.€^^^ the svstem can provide access to 
in this way, given the user' s tag prorile, the sysi: 

services without any formal interaction with the coi-^uter. 

Exaiaple 3 

P=^.nt ,ood, ,t a checout can be carried c« auto^t.cally u,in, the 

tags in the possession of a customer. 

enchased are .canned by a reader. The sub-set of tags in the 
possession of the registered tag set are also scorned. 

The custcer provides a reference to hi, public "•""^"^ 
authentication 1= perfor.ed. The reference ».y be a postcod, or loyalty 

card/ for example- 

The reference «ay alternatively be one of the registered tags hosted 1» a 
^L!f!irtype of Object In the custo„er-s po icn. The data processing 

c.ston»r.. public certificate on a credit card co^any syste., connected 
to the shop systCTi via a network. 

4- <^H4--iated following confirmation from 
A credit card payment transaction is initiated folio g 

^ ^ he wishes to purchase all the scanned goods. The 

the customer that he wishes to p -uuttoh or verbal agreement, 

confirmation can be by signature, press of a button 

Example 4 

r^^^ -is the resource to which access is required. When a 
in this exair^le, a- car is tag ' identifications . For a 

user enters a car, a reader scans the user f ^.^^ ^^^^ persists 

car, the registered set of tags may be held in a certifi 

... a longer period .he sub s t ^i:^^:^^^^ ^ -a 
with the registered set of tags. This can o 
system in the car via local wireless technology. 
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A car can also be the registration point for a user- Each morning a user 
can enter his car with his car key- The car key provides the additional 
authentication mechanism. Alternatively, the additional authentication 
mechanism may be provided by a specific predefined tag (for example, in a 
wallet) or group of tags. 

The car identifies the user by the additional authentication mechanism and 
scans the user using a bviilt in reader. The reader identifies all the tags 
in the possession of the user on that occasion - 

An interface of the reader displays to the user the tag identifications 
located and provides an opportunity for the user to amend the set to be 
registered. The interface may have defaults for accepting or rejecting 
tags in certain items. For example, all tags in clothing may be accepted 
and all tags in temporary items such as consumables, for example 
confectionary packets, may be rejected. 

Once the user has accepted the set of tags, the car data system can 
register the set and communicate the registered set to other destinations, 
for example to the database of the user's workplace. 

On entering the workplace, the user is be scanned by a reader and the tag 
identifications are checked against the registered set held in the 
database. As this database has already been updated by the car 
registration system, the user is permitted access to the workplace 
automatically . 

The above examples show the wide range of applications- of the described- 
identification system- The strength of the system lies in the 
unpredictable natiire of the tag identifications which will be used at any 
time. As the tags are low cost items, their use in objects can be 
widespread providing a high number of tags being recorded resulting in lots 
of permutations of the set. 

Improvements and -modifications can be made to the foregoing without 
departing from the scope of the present invention. 
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Cla&IMS 



1. An identification system for controlling access to a resource, the 
system including: 

one or more objects (100, 202, 310) each hosting an electronic tag 

(102, 204, 3.0.6.).;. . . ' 
a reading means (10 6) ; and 
a data system (108); 

the electronic tag (102, 204, 306) having stored identification data 
(104) readable by the reading means (106) for processing by the data system 
(108), and 

the identification system having registration means for registerxng a 
set of identification data (212, 312) for one or more electronic tags (102, 

204, 306) , , 

wherein a user (200, 300) is permitted access to the resource when 
the user (200, 300) has in his possession at least one of the objects (100, 
202, 310) hosting an electronic tag (102, 204, 306) with registered 
identification data (104) . 

2 An identification system as claioned in claio. 1, herein the resource 
is one of the group of a place, an object, data, information, payment 
means, or authority to act. 

3 An identification system as claimed in claim 1 or claim 2, wherein 
the electronic tags (102, 204, 306) are radio frequency identification 
tags • 

4. An identification system as claimed in any one of claims 1 ^o 3, 
wherein the user (200, 300) is permitted access to the resource when all 
the electronic tags in the registered set are present. 

5 An identification system as claimed in any one of claims 1 to 3, 
wherein the user (200, 300) is permitted access to the resource when a 
sub-set of the electronic tags in the registered set is present. 

6 An identification system as claimed in any one of the preceding 
claims, wherein a reading means (106) is provided at a point of access to 
the resource and the reading means (106) automatically identifies the tag 
identification data (104) and seeks authorisation from the data system 
(108). 
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7. An identification system as claimed in any one of the preceding 
claims, wherein the registration means includes authentication means for 
authentication of the user. 

8. An identification system as claimed in claim 7, wherein the 
authentication means uses pviblic key infrastructure (308) . 

9. An identification system as claimed in any one of the preceding 
claims, wherein the registered set of identification data (212, 312) has a 
reference (208) . 

10. An identification system as claimed in claim 9, wherein the reference 
(208) is the tag identification dat^ (104) of one of the registered set of 
identification data (212, 312) selected according to predefined selection 
criteria . 

11. An identification system as claimed in claim 10, wherein the 
predefined selection criteria include the type of object in which the tag 
is hosted and a count of the sorted identification data. 

12. An identification system as claimed in any one of the preceding 
claims, wherein the registration means generates a record (206, 308) of the 
set of registered identification data (212, 312) the record including a 
reference to the user (208, 314), and one or more attributes (210) of the 
user (200, 300) . 

13. An identification syst«a as claimed in claim l2, wherein the user 
(200, 300) is identified by reading the identification data (104) of the 
tags a02, 204, 306) in his possession and referring to the record (206, 
308) in the data system (108). 

14. An identification system as claimed in any one of the preceding 
claims, wherein the data system (108) is accessible via a network. 

15. An identification system as claimed in any one of the preceding 
claims, wherein. there is provided an interface for the registration means 
for confirming the registered set of identification data (212, 312). 

16. An identification system as claimed in claim 15, wherein the 
registration means has a default for accepting or rejecting identification 
data of tags hosted in predefined types of objects. 
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17. ^ identification system as claixaed in any one of the preceding 
clai^, v^erein the objects (100, 202, 310) are objects habitually carried 
on a person including clbthing, personal effects, and consuxaables . 

18. an identification system as claimed in any one of the preceding 
claims, wherein the registered set has an expiry time. 



19 an identification method con^jrising: 

registering a set of idezitification data (212, 312) for one or more 
electronic tags (102, 204, 306), each tag being hosted in an o^.ec. ..u., 

202, 310); f. 

• a user (200, 300) carrying one or more of the objects (100, 202, 

scanning a user (200", 300) to read the 
the electronic tags (102. 204. 306) hosted in the objects (100. 202, 310, 
beina carried by the user (200, 300); 

IZ^J-^ i^»tific«=n ^ta ,X04, Wl.^ the re,is«..d 

iaen.ifiction d,ta ,212 312,; ana ^ 

penoitting access by the user (20U, Juu; u . ^ ^ 

Identification data is a sv*-,et of the re,i.ter=d ld«.tificati=» data 

(212, 312) . 

20. »n identification ™thod as clal».d m claim 19, w.>.r.in th. rasourca 
i, ona of th. group of a plac, an obj.ct, data, inf=»«tion, payment 



21. ^ identification method ae clai^d in d.i- « or claim 20, w^rain 
the electronic ta,a ,100. 202, 310, are radio fr..;riency identification 



means, or authority to act 

21. 
the 
tags - 

22. identification method as clal^d in any one of claims 19 to 21, 
Wherein the ,^er ,200, 300, is permitted access to the resource «h» all 
the electronic tags <102, 20., 306, in the registered set are pres«.t. 

23. »n identification method as claimed in any one of claims 19 to 22 
therein the user ,200. 300, is permitted access to the 

sub-set of the electronic tags ,102, 204, 306, in the registered set ar. 
present • 

24. An identification method as claimed in any one of claims 19 to 23, 
Wherein th. step of registering i.=l»*s authentication of a user ,200, 

300) . 
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25. An identification method as claimed in claim 24, wherein the 
authentication uses piiblic key infrastructure (308). 

26 • An identification method as claimed in any one of claims 19 to 25, 
wherein the step of registering a set of identification data (212, 312) 
includes providing a reference (208) to the set. 

27. An identification method as claimed in claim 26, wherein the 
reference (208) is the tag identification data (104) of one of the 
registered set of identification data (212, 312) selected according to 
predefined selection criteria - 

28. An identification system as claimed in cla±m 27, wherein the 
predefined selection criteria include the type of object in which the tag 
is hosted and a cotint of the sorted identification data. 

29. An identification method as claimed in any one of claims 19 to 28, 
wherein the registration generates a record {206, 308) of the set of 
registered identification data (212, 312), the record including a reference 
to the user (208, 314), and one or more attributes (210) of the user. 

30. An identification method as claimed in claim 29, wherein the user 
(200, 300) is identified by scanning the identification data (104) of the 
tags in his possession and referring to the record (206, 308). 

31. An identification method as claimed in any one of claims 19 to 30, 
wherein the registered set of identification data (212, 312) is accessible 
via a network. 

32. An identification method as claimed in any one of claims 19 to 31, 
wherein the step of registering includes the user (200, 300) confirming the 
registered set of identification data. 

33. An identification. method as claimed in claim 32, wherein the step of 
registering includes defaulting to accept or reject identification data of 
tags hosted in predefined types of objects. 

34. An identification method as claimed in any one of claims 19 to 33, 
wherein the objects (100, 202, 310) are objects habitually carried on a 
person including clothing, personal effects, and consumables. 

35. An identification method as claimed in any one of claims 19 to 34, 
wherein the step of registering is repeated at time intervals. 



GB920030018GB1 



19 



36. An identification system for controlling access to a resource, the 
system including: 

an object (100, 202, 310) hosting an electronic tag (102, 204, 306); 
a reading means (106) ; and • 
a data system (108); 

the electronic tag (102, 204, ' 306) having stored identification jlata 
(104) readidile" by the reading means (106)- for pr5cessing- by the dita systCTi 
(108), and 

wherein a user (200, 300) is permitted access to the resource when 
the user has in his possession the object (100, 202, 310) hosting the 
electronic tag (102, 204, 306) . 

37. An identification service con5>rising: 

registering a set of identification data (212, 312) for one or more 
electronic tags (102, 204, 306), each tag being hosted in an object (100, 
202, 310); 

a user (200, 300) carrying one or more of the objects (lOO, 202, 

310) ; 

scanning a user (200, 300) to read the identification data (104) of 
the electronic tags (102, 204. 306) hosted in the objects. (100. 202, 310) 
being carried by the user (200, 300) ; 

con5>aring the scanned identification data (104) with the registered 
identification data (212, 312); and 

permitting access by the user (200, 300) to a resource if the scanned 
identification data is a sub-set of the registered identification data 
(212, 312) . 
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ABSTRACT 

IDEOTIFICATION MEOIHOD AND SYSTEM 

An identification system is provided for controlling access to a resource 
such as a place, an object, data, inf ooiatioh, payment means, or authority 
to act. The system includes one or more objects (100, 202, 310) each 
hosting an electronic tag (102, 204, 306); a reading means (106); and a 
data system (108). The electronic tag (102, 204, 306) has stored 
identification data (104) readable by the reading means (106) for 
processing by the data system (108), The identification system also has 
registration means ror registering a seu ox juj.csxiu^Zj-'-a.^-a.^xx v---r — 

for one or more electronic tags (102, 204, 306). A user (200, 300) is 
permitted access to the resource when the user (200, 300) has in his 
possession at least one of the objects (100, 202, 310) hosting an 
electronic tag (102, 204, 306) with registered identification data (212, 
312) . 
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